Hello,
Thanks for replying...
My current tomcat version is 8.5.x hosted on windows 2012 R2 server and no
other web server as fronted web server.
CSP values shared with me is : "default-src 'self' 'unsafe-eval'
'unsafe-inline' *.mycompany.com; script-src 'self' 'unsafe-inline'
'unsafe-eval'; i
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Nitin,
On 10/3/19 09:54, Nitin Kadam wrote:
> Hell All,
>
> Internal security team recommended to set *Content security policy*
> header for Web server as same is not complaint with security
> standard. can you please help me setting CSP filters for
Hell All,
Internal security team recommended to set *Content security policy* header
for Web server as same is not complaint with security standard.
can you please help me setting CSP filters for my Tomcat application hosted
on windows server.
--
Regards
Nitin Kadam
